Using JDOSecure to Introduce Role-Based Permissions to Java Data Objects-Based Applications

Capítulo de livro Revisado por pares

Using JDOSecure to Introduce Role-Based Permissions to Java Data Objects-Based Applications

2006; Springer Science+Business Media; Linguagem: Inglês

10.1007/11827405_44

ISSN

1611-3349

Autores

Matthias Merz, Markus Aleksy,

Tópico(s)

Software Engineering and Design Patterns

Resumo

The Java Data Objects specification is designed as lightweight persistence approach. Thus, JDO neither supports user authentication nor role-based authorization. Consequently, users are able to query the entire data store as well as to delete persistent objects without any restriction. The novel security approach JDOSecure was developed at the University of Mannheim to prevent unauthorized access to the data store while using the JDO API. Based on the dynamic proxy approach, JDOSecure introduces role-based permissions to JDO-based applications. In this paper we focuses on how JDOSecure enables Java Data Objects-based applications to deal with role-based permissions.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Using JDOSecure to Introduce Role-Based Permissions to Java Data Objects-Based Applications